Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38302e302f32332d3233203d3e203137343531.roa
File: 3131382e39392e38302e302f32332d3233203d3e203137343531.roa (raw, json)
Hash identifier: 8otJP/14Nesc8eMNfOFHC092v+71BVYUqygQuQyMMhE=
Subject key identifier: 97:AC:63:14:17:D0:05:48:2C:94:B9:49:61:52:76:95:84:00:FF:D1
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 1737C0B026557080D4455E74905821CCC176357F
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38302e302f32332d3233203d3e203137343531.roa
Signing time: Sat 01 Jan 2022 03:00:10 +0000
ROA not before: Sat 01 Jan 2022 02:55:10 +0000
ROA not after: Sun 01 Jan 2023 03:00:10 +0000
asID: 17451
IP address blocks: 118.99.80.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:37:c0:b0:26:55:70:80:d4:45:5e:74:90:58:21:cc:c1:76:35:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Jan 1 02:55:10 2022 GMT
Not After : Jan 1 03:00:10 2023 GMT
Subject: CN=3082010A02820101009918B6353E4E9046431ADBBD9DBE80604562BBE157B79C8309E4AC5BF2AF82316D178C31B607D1A7DEF97E6580C939810AEF8678D9D421D09FA5661630646E7E8EEF970E1C9E48F59BC6B949FAB36F77077DC9C62F1005A30EC6246E915B8D9322A104E4A64EF6D6C5FD9B1D59A33E1E6D51ED8D4A204C6632329033721C9FD8AD32A3B90E8DB62AB9FE0504D6791928407B049C4ADABFA222F5BCBA2C728186151EC63B386631E237E8E67ABEA09A6958B8431E2847F9BC20DB3490A1F5CE791FCEBFA769E0B1C0BEE4E68C8A5B1F6880CF42A5BE48A1B27267ECC1F094E31FD359C7FFD5026284B6AD449807409F167BC3B41896DDF8BC6B2FB04F7E3289910203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:b6:35:3e:4e:90:46:43:1a:db:bd:9d:be:
80:60:45:62:bb:e1:57:b7:9c:83:09:e4:ac:5b:f2:
af:82:31:6d:17:8c:31:b6:07:d1:a7:de:f9:7e:65:
80:c9:39:81:0a:ef:86:78:d9:d4:21:d0:9f:a5:66:
16:30:64:6e:7e:8e:ef:97:0e:1c:9e:48:f5:9b:c6:
b9:49:fa:b3:6f:77:07:7d:c9:c6:2f:10:05:a3:0e:
c6:24:6e:91:5b:8d:93:22:a1:04:e4:a6:4e:f6:d6:
c5:fd:9b:1d:59:a3:3e:1e:6d:51:ed:8d:4a:20:4c:
66:32:32:90:33:72:1c:9f:d8:ad:32:a3:b9:0e:8d:
b6:2a:b9:fe:05:04:d6:79:19:28:40:7b:04:9c:4a:
da:bf:a2:22:f5:bc:ba:2c:72:81:86:15:1e:c6:3b:
38:66:31:e2:37:e8:e6:7a:be:a0:9a:69:58:b8:43:
1e:28:47:f9:bc:20:db:34:90:a1:f5:ce:79:1f:ce:
bf:a7:69:e0:b1:c0:be:e4:e6:8c:8a:5b:1f:68:80:
cf:42:a5:be:48:a1:b2:72:67:ec:c1:f0:94:e3:1f:
d3:59:c7:ff:d5:02:62:84:b6:ad:44:98:07:40:9f:
16:7b:c3:b4:18:96:dd:f8:bc:6b:2f:b0:4f:7e:32:
89:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AC:63:14:17:D0:05:48:2C:94:B9:49:61:52:76:95:84:00:FF:D1
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38302e302f32332d3233203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.80.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:9d:d4:d8:76:35:c5:26:3f:0a:55:d2:d3:b6:ee:57:80:8a:
22:51:bd:f6:cb:28:6d:4f:02:87:6d:da:6f:75:a4:57:d0:51:
b1:13:28:a3:6f:c2:ce:c0:77:24:ac:b7:0c:01:a4:7f:b1:a3:
fe:91:b3:b6:b0:3f:46:9a:90:67:42:04:01:d4:74:e4:8d:30:
cd:8a:7b:b8:9c:d7:03:55:02:ae:eb:a2:fd:38:5c:45:78:f1:
bc:b4:88:68:b4:7e:fb:d7:92:ed:54:49:09:3c:ef:b1:6f:58:
ce:85:f3:28:2d:43:53:7b:48:66:e4:1f:47:e8:fe:72:06:fa:
92:ad:38:a7:b1:2d:89:19:9d:84:6e:5b:4f:3d:4c:64:b0:9d:
bd:b0:6a:b0:0a:c3:77:6d:59:a0:19:79:a5:9e:3d:eb:05:75:
f5:df:d5:3d:39:fe:67:4b:b9:b5:8e:69:fb:57:ca:28:b4:3f:
07:36:10:3d:32:fd:93:69:7a:29:9b:78:3f:98:12:c0:45:95:
d7:46:d4:c7:c4:08:f3:c4:bc:6f:c1:a4:e6:e7:43:a6:8a:37:
94:47:fe:bf:91:5e:4d:27:0c:fc:65:da:3a:0f:bc:5e:18:75:
a4:00:79:77:25:a5:48:04:62:67:c6:3d:5f:27:cf:a0:18:bb:
64:67:42:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org